Re: [PATCH V9 2/4] fuse: Trace daemon creds

From: Alessio Balsini
Date: Thu Oct 22 2020 - 12:15:03 EST

Next message: David Laight: "RE: Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c""
Previous message: Joe Perches: "Re: [PATCH RFC] checkpatch: extend attributes check to handle more patterns"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 30, 2020 at 03:16:20PM -0400, Antonio SJ Musumeci wrote:
> On 9/30/2020 2:45 PM, Miklos Szeredi wrote:
> > On Thu, Sep 24, 2020 at 3:13 PM Alessio Balsini <balsini@xxxxxxxxxxx> wrote:
> > > Add a reference to the FUSE daemon credentials, so that they can be used to
> > > temporarily raise the user credentials when accessing lower file system
> > > files in passthrough.
> > Hmm, I think it would be better to store the creds of the ioctl()
> > caller together with the open file. The mounter may deliberately
> > have different privileges from the process doing the actual I/O.
> >
> > Thanks,
> > Miklos
>
>
> In my usecase I'm changing euid/egid of the thread to whichever the uid/gid
> was passed to the server which is otherwise running as root.
>

Ack, in the next patch set I will store the creds of the ioctl() caller.

Thanks,
Alessio

Next message: David Laight: "RE: Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c""
Previous message: Joe Perches: "Re: [PATCH RFC] checkpatch: extend attributes check to handle more patterns"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]